AICPA logo
AICPA logo
  • Home
IT Governance, Risks and Controls
CPE Self-study

IT Governance, Risks and Controls

Provides essential competencies on the learning pathway towards understanding the principles and key components of an effective IT governance model.

$100 - $165
Do you have an AICPA membership? Log in to apply your member discount.



NASBA Field of Study

Information Technology



CPE Credits



Rory Heenan, Matthew Bogusch, Khoa Huynh


1 year

Product Number


 Business & partner 
Product Details

Understanding the principles.

This CPE self-study course will give you the knowledge and tools necessary to implement and maintain an effective IT governance infrastructure that identifies and addresses IT related risks in support of organizational objectives.

If you are seeking the CITP credential, this course provides essential competencies on the learning pathway towards understanding the principles and key components of an effective IT governance model, including the roles and responsibilities of those involved.

Who Will Benefit
  • Auditors
  • Accounting professionals
  • Technology employees
  • Leaders and executives
  • Technology managers
  • Anyone with responsibilities in finance
  • Policy administrators
  • IT staff
  • CPAs interested in the CITP credential
  • Risk professionals
Key Topics
  • Elements of security policy
  • Organizational risk assessment
  • Identity and access management
  • Logical and physical access controls
  • Network and system security controls
  • Business continuity planning
Learning Outcomes
  • Identify the objectives and principles of IT governance, including key components and best practices.
  • Recognize IT governance roles, responsibilities and accountabilities and various IT control frameworks.
  • Identify the process involved in implementing IT governance.
  • Identify the key components and benefits of the IT governance structure.
  • Identify IT related risks that can affect the achievement of overall enterprise objectives.
  • Recognize how to Identify and mitigate risks through effective risk management.
  • Identify risk exposures and ensure properly communicated to manage risks and avoid potential future impacts to the organization.
  • Identify strategies for assessing and recognize the impact of control deficiencies to the entity.
Credit Info
CPE Credits
NASBA Field of Study
Information Technology
This is a digital product. With full paid access the content will be available to you for 1 year after purchase date.
For more information, please refer to CPE requirements and NASBA sponsorship information
Do you have an AICPA membership? Log in to apply your member discount.
AICPA Members
CITP Credential Holders

Group ordering for your team

2 to 5 registrants

Save time with our group order form. We’ll send a consolidated invoice to keep your learning expenses organized.

Start order

6+ registrants

We can help with group discounts. Call us at 1-800-634-6780 (option 1) or email us at

Contact us
Rory Heenan
Rory Heenan is a Manager and CPA within Deloitte & Touche LLP's Risk and Financial Advisory practice. He has over nine years of experience serving clients in a variety of capacities via his compliance and risk expertise, with a focus on domestic and foreign financial institutions. In this capacity, Rory has recently led teams serving large banks in responding to enforcement actions from regulatory authorities. In addition, Rory has provided counsel to clients in governance and policy & procedure consulting, forensic accounting matters, and compliance testing and reporting. He has also led teams in corporate investigations, anti-money laundering consulting, and controls audits. Rory is skilled in all aspects of project delivery and execution.
Matthew Bogusch
Matt is a Director at Deloitte & Touche LLP, specializing in Information Technology, Security & Business Controls. Matt has over 20 years of professional experience, including 15 years of managing and performing information systems and business process control reviews spanning multiple platforms and numerous applications for clients within the Consumer Business, Real Estate, Higher Education, Public Sector, and Healthcare industries. Matt focuses on Sarbanes-Oxley 404 External Audits, as well as ERP security and controls, including SAP, Great Plains, and JD Edwards. He has extensive international experience, having served a leadership role in Deloitte's Latin American practice for several years. Prior to joining Deloitte, Matt had worked for a private company for 5 years within the Financial Reporting, Internal Audit, and Information Systems departments."
Khoa Huynh
Khoa and has extensive experience with program and project delivery through inception to close out in a wide variety of Industries. From major capital projects, enterprise wide systems implementations through to complex Business and Digital Transformation Programs, he has a strong systems engineering background to complement his project experience, and utilises both a technical and business lens to successfully deliver project outcomes. Confident in leading complex transformations utilising and a range of methodologies and techniques to suit the project (from waterfall to agile and scrum) Khoa's ability to empower the team around him to both achieve results whilst growing capability has been the cornerstone of his success with clients. Khoa’s business sector experience has varied across several different industries, including Government, Consumer and Retail, Superannuation and Financial Services, Engineering, and Health. With a passion for problem solving, Khoa drives through to successful outcomes by making considered decisions based on a logical and analytical approach, whilst also adopting a pragmatic view to resolve the issues and challenges that he has faced on engagements. Melbourne, Australia

The Association is dedicated to removing barriers to the accountancy profession and ensuring that all accountancy professionals and other members of the public with an interest in the profession or joining the profession, including those with disabilities, have access to the profession and the Association's website, educational materials, products, and services.The Association is committed to making professional learning accessible to all product users. This commitment is maintained in accordance with applicable law. For additional information, please refer to the Association's Website Accessibility Policy. As part of this commitment, this product is closed-captioned. For additional accommodation requests please contact and indicate the product that you are interested in (title, etc.) and the requested accommodation(s): Audio/Visual/Other. A member of our team will be in contact with you promptly to make sure we meet your needs appropriately.

Ratings and reviews

Shipping and delivery
Shipping costs  and sales taxes will be added later during checkout
Cancellation Policy
View our Cancellation policy here
IT Governance, Risks and Controls
Select from the following options:
Nonmember Price
Price excluding sales tax
Do you have an AICPA membership? 
Log in to apply your member discount.
Shipping cost and sales tax will be added later during checkout

Related content